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AMENDMENT TO THE CLAIMS 

The listing of claims will replace all prior versions, and listings, of claims 
in the application. The listing of claims has been renumbered pursuant to the Examiner's 
renumbering as stated in the Office Action of December 14, 2006. 

1 . (Currently Amended) A system for providing an authorization 
framework for an application, comprising: 

one or more declarations for specifying authorization enforcement points 
for one or more target classes in an application; 

one or more declarations selected from a group consisting of a constant a 
local variable and an instance variable for specifying one or more permission classes for 
the one or more authorization enforcement points;-^id 

authorization enforcement code derived from the one or more declarations 
for specifying one or more permission classes for the one or more authorization 
enforcement points: and 

a processor programmed to insert authorization enforcement code into one 
or more of the target classes according to the authorization enforcement points. 

2. (Currently Amended) The system of claim 1, wherein the authorization 
enforcement points correspond to.one or more methods of the one or more target classes. 

3. (Original) The system of claim 1, wherein the authorization 
enforcement code is in the form of byte code. 

4. (Original) The system of claim 1, wherein the authorization 
enforcement code is in the form of script code. 
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5. (Original) The system of claim 1, wherein the processor is programmed 
to insert the authorization enforcement code in the one or more target classes at runtime of 
the application. 

6. (Original) The system of claim 1, wherein the processor is programmed 
to insert the authorization enforcement code in the one or more target classes after the 
application is loaded in a memory for execution. 

7. (Original) The system of claim 1, wherein the application comprises a 
set of Java-based executable program. 

8. (Cancelled) 

9. (Original) The system of claim 1, wherein each of the declarations are 
stored in a deployment descriptor. 

10. (Original) The system of claim 1, wherein at least one of the 
declarations specifies a subject factory. 

1 1 . (Cvirrentiy Amended) The system of claim 1 , wherein at least one of 
the declarations sp e cifies permission classes is a permission factory. 

12. (Currently Amended) The system of claim 1, wherein at least one of 
the declarations specifies permission classes is a privileged action factory. 

13. (Currentiy Amended) The system of claim 1, wherein at least one of 
the declarations sp e cifies permission classes is a permission action factory. 

14. (Currently Amended) A method for providing an authorization 
framework for an application, comprising: 

coding one or more declarations for specifying authorization enforcement 
points for one or more target classes in an application; 
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coding one or more declarations selected from a group consisting of a 
constant a local variable and an instance variable f or specifying one or more permission 
classes for the one or more authorization enforcement points; md 

compiling authorization enforcement code derived from the one or more 
declarations for specifying one or more permission classes for the one or more 
authorization enforcement points: and 

inserting authorization enforcement code into one or more of the target 
classes according to the authorization enforcement points. 

15. (Currently Amended) The method of claim wherein the 
authorization enforcement points correspond to.one or more methods of the one or more 
target classes. 

16. (Currently Amended) The method of claim 4 ^14, wherein the 
authorization enforcement code is in the form of byte code. 

17. (Currently Amended) The method of claim 4414, wherein the 
authorization enforcement code is in the form of script code. 

18. (Currently Amended) The method of claim 4414, wherein the step of 
inserting occurs at runtime of the application. 

19. (Currently Amended) The method of claim 4414, wherein the step of 
inserting occurs after the application is loaded in a memory for execution. 

20. (Currently Amended) The method of claim 4414, wherein the 
application comprises a Java-based executable program. 

21. (Cancelled) 
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22. (Currently Amended) The method of claim iSU, wherein each of the 
declarations are stored in a deployment descriptor. 

23. (Original) The method of claim 14, wherein at least one of the 
declarations specifies a subject factory. 

24. (Currently Amended) The method of claim j-S-H, wherein at least one 
of the declarations specifi e s permission classes is permission factory, 

25. (Currently Amended) The method of claim 4414, wherein at least one 
of the d e clarations specifies permission classes is a privileged action factory. 

26. (Currently Amended) The method of claim 4414, wherein at least one 
of the d e clarations sp e cifi e s permission classes is a permission action factory. 

27. (Currently Amended) A computer program product having a computer 
readable medium havmg computer program logic recorded thereon for providing an 
authorization framework for an application, comprising: 

one or more declarations for specifying authorization enforcement points 
for one or more target classes in an application; 

one or more declarations selected from a group consisting of a constant, a 
local variable and an instance variable for specifying one or more permission classes for 
the one or more authorization enforcement points;-aad 

authorization enforcement code derived from the one or more declarations 
for specifying one or more permission classes for the one or more authorization 
enforcement points; and 

computer readable means for inserting authorization enforcement code into 
one or more of the target classes according to the authorization enforcement points. 
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28. (Currently Amended) The computer program of claim 3S27, wherein 
the authorization enforcement points correspond to one or more methods of the one or 
more target classes. 

29. (Currently Amended) The computer program of claim 3S27, wherein 
the permission class objects are in the form of byte code. 

30. (Currently Amended) The computer program of claim 3&27, wherein 
the authorization enforcement code is in the forni of script code. 

3 1 . (Currently Amended) The computer program of claim 2827, wherein 
the computer readable means for inserting are for inserting the authorization enforcement 
code at runtime of the application. 

32. (Currently Amended) The computer program of claim 2827, wherein 
the computer readable means for inserting are for inserting the authorization enforcement 
code after the application is loaded in a memory for execution. 

33. (Currently Amended) The computer program of claim 3S27, wherein 
the application comprises a Java-based executable program. 

34. (Cancelled) 

35. (Currently Amended) The computer program of claim 3827, wherein 
each of the declarations are stored in a deployment descriptor. 

36. (Currently Amended) The computer program of claim 2 &27, wherein 
at least one of the declarations specifies a subject factory. 

37. (Currently Amended) The computer program of claim 2827, wherein 
at least one of the declarations specifies p ermission classes is a permission factory. 



{0025521 8.DOC;2} 



9 



PATENT 

Atty. Docket No.: 600177.077 
(LOT9-2002-0069US1) 

38. (Currently Amended) The computer program of claim 3&27, wherein 
at least one of the declarations sp e cifi e s p ermission classes is a privileged action factory. 

39. (Currently Amended) The computer program of claim 3S27, wherein 
at least one of the declarations specifies p ermission classes is a permission action factory. 
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